TTLS use_tunneled_reply and Mac OSX

Phil Mayers p.mayers at
Wed Jul 20 14:39:25 CEST 2011

On 20/07/11 11:26, Scott Armitage wrote:
> Hi,
> I have noticed that when authenticating using TTLS/MSCHAPv2 that the
> outer-identity is used in the RADIUS reply packet even if the
> use_tunneled_reply is set to yes for TTLS in eap.conf

That's not what we see:

[ttls] Using saved attributes from the original Access-Accept
	User-Name = "xxx"
Sending Access-Accept of id 8 to port 57353
	User-Name = "xxx"

Can you show a debug?

> Does anyone know the reason for this?

Are you using TLS session resumption?

More information about the Freeradius-Users mailing list